106.13.26.31 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Baidu Netcom Science and Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Search Engine Spider

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 21 04:21:29 localhost sshd\[25218\]: Invalid user ftp from 106.13.26.31 port 53148 Aug 21 04:21:29 localhost sshd\[25218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 21 04:21:31 localhost sshd\[25218\]: Failed password for invalid user ftp from 106.13.26.31 port 53148 ssh2	2019-08-21 10:29:12
attackbotsspam	Aug 19 12:46:47 game-panel sshd[20796]: Failed password for root from 106.13.26.31 port 47394 ssh2 Aug 19 12:50:43 game-panel sshd[20941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 19 12:50:45 game-panel sshd[20941]: Failed password for invalid user owen from 106.13.26.31 port 40488 ssh2	2019-08-20 00:41:20
attack	Aug 12 18:08:28 vps647732 sshd[29266]: Failed password for root from 106.13.26.31 port 44870 ssh2 Aug 12 18:13:37 vps647732 sshd[29376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 ...	2019-08-13 00:17:05
attack	Aug 2 21:13:16 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: Invalid user hacker from 106.13.26.31 Aug 2 21:13:16 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 Aug 2 21:13:18 Ubuntu-1404-trusty-64-minimal sshd\[6744\]: Failed password for invalid user hacker from 106.13.26.31 port 46734 ssh2 Aug 2 21:26:25 Ubuntu-1404-trusty-64-minimal sshd\[12750\]: Invalid user botmaster from 106.13.26.31 Aug 2 21:26:25 Ubuntu-1404-trusty-64-minimal sshd\[12750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31	2019-08-03 06:39:19
attackspam	Jul 29 05:16:57 xb0 sshd[6252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:16:59 xb0 sshd[6252]: Failed password for r.r from 106.13.26.31 port 46130 ssh2 Jul 29 05:16:59 xb0 sshd[6252]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul 29 05:38:13 xb0 sshd[2220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:38:15 xb0 sshd[2220]: Failed password for r.r from 106.13.26.31 port 39414 ssh2 Jul 29 05:38:15 xb0 sshd[2220]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul 29 05:40:56 xb0 sshd[27144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.31 user=r.r Jul 29 05:40:57 xb0 sshd[27144]: Failed password for r.r from 106.13.26.31 port 34368 ssh2 Jul 29 05:40:57 xb0 sshd[27144]: Received disconnect from 106.13.26.31: 11: Bye Bye [preauth] Jul........ -------------------------------	2019-07-29 20:46:01

相同子网IP讨论:

IP	类型	评论内容	时间
106.13.26.62	attackspam	(sshd) Failed SSH login from 106.13.26.62 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 13:57:38 amsweb01 sshd[31506]: Invalid user han from 106.13.26.62 port 41772 Aug 30 13:57:41 amsweb01 sshd[31506]: Failed password for invalid user han from 106.13.26.62 port 41772 ssh2 Aug 30 14:11:31 amsweb01 sshd[1037]: Invalid user cosmo from 106.13.26.62 port 52992 Aug 30 14:11:33 amsweb01 sshd[1037]: Failed password for invalid user cosmo from 106.13.26.62 port 52992 ssh2 Aug 30 14:16:11 amsweb01 sshd[1795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 user=root	2020-08-30 20:42:46
106.13.26.62	attackspam	2020-08-27T01:25:04.712830ks3355764 sshd[28109]: Invalid user ide from 106.13.26.62 port 52384 2020-08-27T01:25:06.056295ks3355764 sshd[28109]: Failed password for invalid user ide from 106.13.26.62 port 52384 ssh2 ...	2020-08-27 07:47:06
106.13.26.62	attack	Aug 1 16:26:32 fhem-rasp sshd[4689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 user=root Aug 1 16:26:35 fhem-rasp sshd[4689]: Failed password for root from 106.13.26.62 port 58614 ssh2 ...	2020-08-02 01:43:48
106.13.26.62	attackspambots	Jul 18 18:11:06 master sshd[2173]: Failed password for invalid user by from 106.13.26.62 port 58152 ssh2 Jul 18 18:17:52 master sshd[2278]: Failed password for invalid user rcs from 106.13.26.62 port 36046 ssh2 Jul 18 18:22:11 master sshd[2357]: Failed password for invalid user maint from 106.13.26.62 port 47722 ssh2 Jul 18 18:25:54 master sshd[2399]: Failed password for invalid user unturned from 106.13.26.62 port 59412 ssh2 Jul 18 18:29:37 master sshd[2445]: Failed password for invalid user user from 106.13.26.62 port 42848 ssh2 Jul 18 18:33:19 master sshd[2905]: Failed password for invalid user admin from 106.13.26.62 port 54520 ssh2 Jul 18 18:37:02 master sshd[2953]: Failed password for invalid user facai from 106.13.26.62 port 37942 ssh2 Jul 18 18:40:47 master sshd[3070]: Failed password for invalid user mort from 106.13.26.62 port 49614 ssh2 Jul 18 18:44:36 master sshd[3130]: Failed password for invalid user antje from 106.13.26.62 port 33046 ssh2	2020-07-19 03:02:50
106.13.26.62	attackspambots	Jul 4 20:49:56 raspberrypi sshd[6366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.62 Jul 4 20:49:58 raspberrypi sshd[6366]: Failed password for invalid user gmodserver from 106.13.26.62 port 38880 ssh2 ...	2020-07-05 02:59:03
106.13.26.67	attack	Invalid user vicente from 106.13.26.67 port 44694	2020-06-29 23:28:03
106.13.26.67	attack	Jun 26 05:56:44 pve1 sshd[27796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 26 05:56:45 pve1 sshd[27796]: Failed password for invalid user lmy from 106.13.26.67 port 54842 ssh2 ...	2020-06-26 12:22:20
106.13.26.67	attack	Jun 22 13:28:07 sso sshd[8569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 22 13:28:09 sso sshd[8569]: Failed password for invalid user manjaro from 106.13.26.67 port 46612 ssh2 ...	2020-06-22 20:05:42
106.13.26.62	attack	(sshd) Failed SSH login from 106.13.26.62 (CN/China/-): 5 in the last 3600 secs	2020-06-09 21:26:08
106.13.26.67	attack	Jun 9 06:40:59 eventyay sshd[3116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 Jun 9 06:41:01 eventyay sshd[3116]: Failed password for invalid user nagios from 106.13.26.67 port 34968 ssh2 Jun 9 06:44:35 eventyay sshd[3323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 ...	2020-06-09 12:50:46
106.13.26.67	attack	Jun 6 23:04:41 santamaria sshd\[27005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root Jun 6 23:04:43 santamaria sshd\[27005\]: Failed password for root from 106.13.26.67 port 54594 ssh2 Jun 6 23:08:13 santamaria sshd\[27091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root ...	2020-06-07 08:13:25
106.13.26.67	attack	$f2bV_matches	2020-06-01 17:49:29
106.13.26.67	attackbots	2020-05-25T03:49:46.146220shield sshd\[19492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root 2020-05-25T03:49:47.570627shield sshd\[19492\]: Failed password for root from 106.13.26.67 port 48766 ssh2 2020-05-25T03:53:02.616357shield sshd\[20089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root 2020-05-25T03:53:04.951047shield sshd\[20089\]: Failed password for root from 106.13.26.67 port 35752 ssh2 2020-05-25T03:56:26.844751shield sshd\[20847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root	2020-05-25 12:01:22
106.13.26.62	attackbots	Brute force SMTP login attempted. ...	2020-05-24 23:58:39
106.13.26.67	attackbots	ssh intrusion attempt	2020-05-22 15:05:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.13.26.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18464
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.13.26.31.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 20:45:51 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 31.26.13.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 31.26.13.106.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
103.255.121.135	attackspam	Sep 25 01:27:06 plusreed sshd[8329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.255.121.135 user=root Sep 25 01:27:08 plusreed sshd[8329]: Failed password for root from 103.255.121.135 port 33830 ssh2 ...	2019-09-25 13:41:23
112.64.34.165	attackspam	Sep 25 07:08:28 rotator sshd\[25815\]: Invalid user ss from 112.64.34.165Sep 25 07:08:30 rotator sshd\[25815\]: Failed password for invalid user ss from 112.64.34.165 port 33460 ssh2Sep 25 07:13:28 rotator sshd\[26595\]: Invalid user emily from 112.64.34.165Sep 25 07:13:30 rotator sshd\[26595\]: Failed password for invalid user emily from 112.64.34.165 port 49844 ssh2Sep 25 07:18:25 rotator sshd\[27375\]: Invalid user ltenti from 112.64.34.165Sep 25 07:18:26 rotator sshd\[27375\]: Failed password for invalid user ltenti from 112.64.34.165 port 37993 ssh2 ...	2019-09-25 13:19:04
151.80.27.32	attack	Port Scan: TCP/42766	2019-09-25 13:18:12
172.104.242.173	attackspambots	09/25/2019-00:41:59.262817 172.104.242.173 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-25 13:08:45
200.116.195.122	attack	web-1 [ssh] SSH Attack	2019-09-25 13:47:46
104.168.199.40	attackbots	2019-09-25T08:34:23.727140tmaserv sshd\[29745\]: Invalid user th from 104.168.199.40 port 56052 2019-09-25T08:34:23.730126tmaserv sshd\[29745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-479602.hostwindsdns.com 2019-09-25T08:34:26.252830tmaserv sshd\[29745\]: Failed password for invalid user th from 104.168.199.40 port 56052 ssh2 2019-09-25T08:40:34.321775tmaserv sshd\[30040\]: Invalid user racquel from 104.168.199.40 port 40712 2019-09-25T08:40:34.325323tmaserv sshd\[30040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-479602.hostwindsdns.com 2019-09-25T08:40:36.447510tmaserv sshd\[30040\]: Failed password for invalid user racquel from 104.168.199.40 port 40712 ssh2 ...	2019-09-25 13:42:53
93.115.150.236	attackspambots	2019-09-25T05:29:05.059909abusebot-8.cloudsearch.cf sshd\[25961\]: Invalid user trendimsa1.0 from 93.115.150.236 port 55718	2019-09-25 13:51:24
206.81.29.166	attackspam	Automatic report - Banned IP Access	2019-09-25 13:49:52
198.200.124.197	attackbotsspam	Sep 25 10:16:02 gw1 sshd[7500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.200.124.197 Sep 25 10:16:03 gw1 sshd[7500]: Failed password for invalid user maya from 198.200.124.197 port 35496 ssh2 ...	2019-09-25 13:43:26
139.155.123.84	attackbots	Sep 25 06:58:43 OPSO sshd\[14952\]: Invalid user sonhn from 139.155.123.84 port 33455 Sep 25 06:58:43 OPSO sshd\[14952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.123.84 Sep 25 06:58:45 OPSO sshd\[14952\]: Failed password for invalid user sonhn from 139.155.123.84 port 33455 ssh2 Sep 25 07:03:49 OPSO sshd\[15895\]: Invalid user karina from 139.155.123.84 port 47776 Sep 25 07:03:49 OPSO sshd\[15895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.123.84	2019-09-25 13:10:07
58.244.216.237	attack	Unauthorised access (Sep 25) SRC=58.244.216.237 LEN=40 TTL=49 ID=2985 TCP DPT=8080 WINDOW=3497 SYN	2019-09-25 13:41:47
119.28.140.227	attackbots	Sep 25 07:24:59 meumeu sshd[32629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.140.227 Sep 25 07:25:01 meumeu sshd[32629]: Failed password for invalid user praise from 119.28.140.227 port 56906 ssh2 Sep 25 07:29:46 meumeu sshd[818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.140.227 ...	2019-09-25 13:47:21
51.15.51.2	attackspam	Sep 24 18:43:28 lcprod sshd\[28835\]: Invalid user parking from 51.15.51.2 Sep 24 18:43:28 lcprod sshd\[28835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.51.2 Sep 24 18:43:30 lcprod sshd\[28835\]: Failed password for invalid user parking from 51.15.51.2 port 37028 ssh2 Sep 24 18:48:00 lcprod sshd\[29221\]: Invalid user mailnull from 51.15.51.2 Sep 24 18:48:00 lcprod sshd\[29221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.51.2	2019-09-25 13:02:23
185.176.27.18	attack	09/24/2019-23:55:15.224100 185.176.27.18 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-09-25 13:13:16
80.151.229.8	attackspambots	Sep 25 07:50:36 server sshd\[18872\]: Invalid user elliott from 80.151.229.8 port 24759 Sep 25 07:50:36 server sshd\[18872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.151.229.8 Sep 25 07:50:38 server sshd\[18872\]: Failed password for invalid user elliott from 80.151.229.8 port 24759 ssh2 Sep 25 07:54:32 server sshd\[22333\]: Invalid user wz from 80.151.229.8 port 30074 Sep 25 07:54:32 server sshd\[22333\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.151.229.8	2019-09-25 13:14:37

最近上报的IP列表

113.118.192.165	193.248.148.163	60.167.132.80	183.178.214.246
212.199.114.139	170.239.204.160	203.86.24.203	209.103.109.218
149.66.99.249	202.253.211.143	128.199.119.22	155.110.124.169
43.243.127.89	66.137.87.128	153.136.129.143	44.101.184.12
138.182.103.165	82.156.41.95	188.166.117.213	116.196.83.230